Privilege Reference

• Manage the organization usage analytics data:

  • Add and delete test usage analytics data in the account

  • Edit, get, delete, and disable the organization account

• Define IP addresses whose events are flagged as internal (see Administration API - Version 15 and Internal Event Filters)

• Administrators

• API keys

• View reports (see Manage Usage Analytics Reports)

• View dimensions (see Manage Dimensions on Custom Metadata)

• View named filters (see Manage Named Filters)

• View permission filters (see Manage Permission Filters)

• View usage analytics data exports (see Manage Data Exports)

• Analytics managers

• Analytics viewers

• Relevance managers

• View reports (see Manage Usage Analytics Reports)

• View dimensions (see Manage Dimensions on Custom Metadata)

• View named filters (see Manage Named Filters)

• View permission filters (see Manage Permission Filters)

• View usage analytics data exports (see Manage Data Exports)

• Send analytics events to Coveo UA (see Manage API Keys)

View and download usage analytics data exports containing clicks, groups, keywords, searches, and custom events meeting the specified criteria for a specific date range (see Manage Data Exports)

• Add, edit, or delete analytics data exports from the specified user visits (see Manage Data Exports)

• Review user visits (see Review User Visits With the Visit Browser)

• Administrators

• Analytics managers

• Analytics viewers

• Relevance managers

• Administrators

• API keys

• View dimensions (see Manage Dimensions on Custom Metadata)

• View reports (see Manage Usage Analytics Reports)

• View named filters (see Manage Named Filters)

• View permission filters (see Manage Permission Filters)

Add, edit, or delete dimensions created by Coveo organization members (see Manage Dimensions on Custom Metadata)

• Administrators

• Analytics managers

Allow a custom process or bot to push usage analytics events with different identities

• Administrators

• API keys

View incoherent events (see Review Incoherent Usage Analytics Events)

Administrators

Add, edit, or delete named filters (see Manage Named Filters)

• Administrators

• Analytics managers

• Relevance managers

View permission filters restricting the usage analytics data that analysts can review in reports (see Manage Permission Filters)

• Analytics viewers

• Analytics managers

• Relevance managers

Add, edit, or delete permission filters (see Manage Permission Filters)

Administrators

View usage analytics reports (see Review and Manage Dashboards and Review and Manage Explorers)

Add, edit, or delete usage analytics reports (see Manage Usage Analytics Reports)

• Administrators

• Analytics managers

• Relevance managers

Allow a process such as a search interface to receive query suggestions from the Coveo Analytics service (see About Usage Analytics Service Query Suggestions)

• Administrators

• API keys

View all reports, regardless of report accesses (see Manage Access to Usage Analytics Reports). Members that don't have this access level can only review the reports they're explicitly allowed to access.

• Administrators

• Analytics managers

View catalogs and catalog configuration.

Add, edit, or delete catalogs.

• Administrators
• Content managers

• Access the Crawling Module page (see Monitor the Crawling Module).

• When you create or edit a source, this privilege allows you to select the Crawling Module instance responsible for crawling this source.

• Content managers¹
• Users¹

• Administrators²

• API keys

View the code and usage statistics of available extensions assigned to sources. This is especially useful when troubleshooting cases such as item indexing issues (see Manage Extensions).

Add code snippets to apply transformations to included items such as adding or modifying metadata (see Add or Edit Indexing Pipeline Extensions). We recommend that you grant this privilege to developers only.

• Administrators

• Content managers

View fields and field configuration (see Manage Fields)

• Add, edit, or delete fields (see Manage Fields)

• Add, update, or delete fields in batches (see Creating Fields)

• Administrators

• API keys

• Content managers

• In the Sources pages, see in which index the content of each source is stored (see Manage Your Organization Indexes)
• When adding a source, select the index in which the retrieved content will be stored

Required to use an upcoming feature. Granting this access level to groups of users doesn't give them any additional capabilities yet.

• Administrators
• Content managers

• View security identity provider update status, statistics, and refresh schedule (see Manage Security Identities)

• View security identity provider references such as provider IDs and the sources that use each provider (see Review Additional Statistics)

• View the permissions and effective permissions on Coveo organization items (see Review Item Properties)

• View security identities and their status inside each security provider

Only required by certain API calls (e.g., enable all disabled entities in security cache). Granting this access level to groups of users doesn't give them any additional capabilities.

Administrators

• View security identity provider update status, statistics, and refresh schedule (see Manage Security Identities)

• View security identity provider references such as provider IDs and the sources that use each provider (see Review Additional Statistics)

• View security identities and their status inside each security provider

• Refresh security identity providers (see Refresh a Security Identity Provider and Refresh All Security Identities)

• Edit security identity provider refresh schedules

• Edit a security identity provider

Administrators

• View all sources (see Manage Sources)

• View configuration of all sources

• View all source logs (see Log Browser)

• Subscribe to source notifications (see User Notifications)

Users

• View source (see Manage Sources)

• View source configuration

• View source logs (see Log Browser)

• Subscribe to source notifications (see User Notifications)

• Edit or delete specific sources (see Add or Edit a Source)

• Edit specific source refresh schedules (see Edit a Source Schedule)

• Edit specific source mappings (see Manage Source Mappings)

• Launch, pause, resume, and cancel specific source updates (see Refresh, Rescan, or Rebuild Sources)

• Use the push API to send content to Coveo Cloud (see Push API)

• Subscribe to source notifications (see User Notifications)

• Add sources

• Edit or delete all sources

• Edit all source refresh schedules (see Edit a Source Schedule)

• Edit all source mappings (see Manage Source Mappings)

• Launch, pause, resume, and cancel all source updates (see Refresh, Rescan, or Rebuild Sources)

• Use the push API to send content to Coveo Cloud (see Push API)

• Subscribe to source notifications (see User Notifications)

• Administrators

• Content managers

View Coveo Machine Learning models

Add, edit, or delete machine learning models, and therefore optimize search results relevance and search experience in general (see Manage Machine Learning Models).

• Administrators

• Relevance managers

View the Coveo Machine Learning user profile made for each user or visitor ID

Edit the Coveo Machine Learning user profile made for each user or visitor ID

Administrators

View in read-only mode the configuration of all API keys (see Manage API Keys).

• Content managers

• Relevance managers

View in read-only mode the configuration of specific API keys (see Manage API Keys).

Edit, delete, activate, and disable specific API keys (see Manage API Keys and Custom Access Level)

Add, edit, delete, activate, and disable all API keys (see Manage API Keys and Custom Access Level)

Administrators

View all organization activities (see Review All Events Related to Coveo Administration Console Resources)

• Content managers

• Relevance managers

Send custom activities to Coveo Cloud (see Add or Edit a Push Source)

• Administrators

• API keys

• View index status (see Index Status)

• View index details (see Review Index Details)

• Add an index (see Add an Index)

• Edit the JSON configuration of an index (see Edit an Index JSON Configuration)

Administrators

Access the list of available critical updates

Enable/disable critical updates in the organization

• View all groups, including their privileges (see Manage Groups)

• View organization members (see Manage Members)

Analytics managers

View groups, including their privileges (see Manage Groups)

• Content managers

• Relevance managers²

• Copy, edit, or delete groups and members (see Duplicate a Group, Edit a Group, and Delete a Group)
• Edit group member privileges (see Privileges Tab)
• Send invitations to users (see Create a New Group and Manage Members)

• Relevance managers²

• Copy, edit, or delete all groups and their members (see Duplicate a Group, Edit a Group, and Delete a Group)
• Edit privileges of all groups (see Privileges Tab)
• Send invitations to users (see Create a New Group and Manage Members)

Administrators

Validate a resource snapshot

• Synchronize snapshot resources
• Reset all associations

Administrators

View organization notifications (see Manage Notifications)

Edit and delete organization notifications (see Manage Notifications)

Administrators

• Administrators¹
• API keys

• Access the Coveo Administration Console¹ (see Minimum Privilege and Coveo Administration Console)

  Without the View access level, an organization member gets the following message when trying to log in to the Administration Console (see Logging in to Coveo Cloud):

  Insufficient Privileges - You currently have insufficient privileges to access the Coveo Administration Console of the [OrganizationName] organization. Contact an administrator of the [OrganizationName] organization to change your privileges, or select an organization to which you have access through the Coveo Administration Console.

• View the organization status and license type (see License Information)

• Analytics managers

• Analytics viewers

• Content managers

• Relevance managers

• Users

• Edit the organization display name and contact (see Organization ID and Other Information)

• Delete the organization (see Organization Information)

• Allow Coveo Professional Services access to the organization (see Coveo Professional Services Support)

Administrators

• View the snapshots in the organization
• Validate a snapshot

• Create a snapshot
• Send a snapshot to a different organization
• Apply a snapshot
• Delete a snapshot

• Administrators
• Analytics managers
• Content managers
• Relevance managers

For organization members and API keys to send queries and get search results in search pages connected to their Coveo organization (see Searching With Coveo Cloud)

• Administrators

• API keys

• Content managers

• Relevance managers

• Users

Obtain a search token for a search interface that replicates a permission system to perform queries with the end-user identity and return only results the user is authorized to see.

• Administrators

• API keys

Manage authentication for sources that index permissions, such as when they're secured with SharePoint claims-based identities

• Administrators

• API keys

In the Consumption Dashboard, download a list of the queries performed in a hub during a certain month (see Using the Search Consumption Dashboard)

Administrators

• View query pipelines (see What's a Query Pipeline? and Manage Query Pipelines)

• View query pipeline rules

• View query pipeline rule conditions (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• View A/B tests (see Manage A/B Tests)

• View query pipeline (see What's a Query Pipeline? and Manage Query Pipelines)

• View query pipeline rules

• View query pipeline rule condition (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• View A/B test (see Manage A/B Tests)

• Edit or delete specific query pipelines (see What's a Query Pipeline? and Manage Query Pipelines)

• Edit or delete specific query pipeline rules (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Edit or delete specific query pipeline rule conditions (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Edit or delete specific A/B tests (see Manage A/B Tests)

Optimize results relevance and search experience in general:

• Add, edit, or delete all query pipelines (see What's a Query Pipeline? and Manage Query Pipelines)

• Add, edit, or delete all query pipeline rules (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Add, edit, or delete all query pipeline rule conditions (see Manage Query Pipeline Rules and Rule Conditions From Tabs)

• Add, edit, or delete all A/B tests (see Manage A/B Tests)

• Administrators

• Relevance managers

Link a Coveo organization to a Salesforce organization that uses a Salesforce index

Access the search pages hosted by the Coveo organizations of which a user is a member

Users

• Add or delete hosted search pages (see Manage Hosted Search Pages)

• Edit hosted search pages, i.e.,

  • Customize search page interfaces (see Customize the Interface of a Search Page)

  • Edit search page configurations (see Edit a Search Pages)

Browse all the content of a Coveo organization index, and therefore be able to troubleshoot search issues (see Inspect Items With the Content Browser)